Fixing PLans page

backend/igny8_core/auth/middleware.py

@@ -35,13 +35,11 @@ class AccountContextMiddleware(MiddlewareMixin):
             # This ensures changes to account/plan are reflected immediately without re-login
             try:
                 from .models import User as UserModel
-                # Refresh user from DB with account and plan relationships to get latest data
-                # This is important so account/plan changes are reflected immediately
-                user = UserModel.objects.select_related('account', 'account__plan').get(id=request.user.id)
-                # Update request.user with fresh data
-                request.user = user
-                # Get account from refreshed user
-                user_account = getattr(user, 'account', None)
+                # CRITICAL FIX: Never mutate request.user - it causes session contamination
+                # Instead, just read the current user and set request.account
+                # Django's session middleware already sets request.user correctly
+                user = request.user  # Use the user from session, don't overwrite it
+                
                 validation_error = self._validate_account_and_plan(request, user)
                 if validation_error:
                     return validation_error